Q&A: HIPAA-compliant fundraising
Q: A large specialty medical group with a nonprofit research foundation allows the foundation to use its patient database for annual giving campaign mailing. Does this practice violate HIPAA?
A: This is acceptable provided that the medical group informs individuals about this use of their information in their notice of privacy practices and gives them the opportunity to opt out if they do not wish to receive further fundraising communication. In addition, note that covered entities may only use patients’ basic demographic data for fundraising purposes; they may not use any type of clinical information for targeted fundraising.
Editor’s note: Mary Brandt, president of Brandt & Associates, Inc., a healthcare consulting firm in Bellaire, TX answered this question in the January issue of Briefings on HIPAA.
- Drug Pricing 'Tantamount to Greed,' Lawmaker Says
- Study Puts Spotlight on Preventing Fall-Related Injuries
- Surgical Checklists Unused in 10% of Hospitals, CMS Data Shows
- CVS Ramps Up Retail Clinics with Provider Affiliations
- Wanted: Nurse PhDs
- The Infection-Busting Treatment Payers Don’t Want to Talk About
- 4 Tectonic Shifts Shaking Up Healthcare
- Contradictory Obamacare Rulings Issued by Appellate Courts
- Doctors Feel Pressure to Accept Risk-based Reimbursement
- As HIPAA Breaches Accelerate, Tools Lag